Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/03369F1C4DD011F083372FEFDAE4EC9C.roa
File: 03369F1C4DD011F083372FEFDAE4EC9C.roa (raw, json)
Hash identifier: 7mnbl7JVackcEad+hbA9Sol1lGA8WHky6MPY9EMrs3I=
Subject key identifier: F8:CB:E5:D7:D0:A0:12:2F:53:AC:85:5C:AE:D7:39:9D:5B:AA:3E:8F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018785
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/03369F1C4DD011F083372FEFDAE4EC9C.roa
Signing time: Fri 20 Jun 2025 12:13:45 +0000
ROA not before: Fri 20 Jun 2025 12:13:41 +0000
ROA not after: Sat 26 Jul 2025 12:13:41 +0000
asID: 9009
IP address blocks: 154.199.160.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 03 Jul 2025 00:07:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100229 (0x18785)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 20 12:13:41 2025 GMT
Not After : Jul 26 12:13:41 2025 GMT
Subject: CN=68555079-03fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:af:f9:88:a0:7f:ea:7d:12:48:cd:c6:9a:d7:
6c:74:93:68:cf:91:e5:12:f0:ca:93:52:0c:25:92:
ac:76:e6:f7:bd:58:7c:06:39:57:c3:90:63:f6:0f:
b2:56:a1:93:d8:04:61:af:56:f6:e7:38:be:47:8a:
0d:7f:aa:42:c4:87:0e:2d:2a:c2:8e:0a:9e:d3:66:
ea:3b:eb:95:12:fe:9b:29:3b:38:a2:7e:22:c3:9e:
62:de:a1:40:ee:1b:1e:61:86:b5:a2:ba:0f:01:b0:
14:51:64:71:fe:50:f0:98:76:04:dc:fa:2a:fc:2d:
ca:bf:4f:ca:50:e0:aa:98:86:d5:25:d4:dd:86:95:
31:35:55:e5:18:56:26:6c:5a:74:01:1d:fe:86:d4:
f0:c9:f5:26:29:df:bf:8e:0e:74:86:f0:b0:6e:db:
d8:22:9f:1c:26:f9:ad:cf:e0:02:c1:b5:59:a7:ff:
1c:52:04:65:16:1a:91:39:7d:41:61:f0:be:f4:35:
5e:43:1f:b9:df:06:01:ee:76:51:ef:bb:21:90:21:
fe:3f:94:f8:7b:45:72:55:17:9d:79:85:04:f8:6c:
d1:59:6d:bf:76:e5:b1:fd:c4:76:e0:65:98:9a:de:
06:11:e2:1d:66:3a:e3:c4:a1:81:7e:41:4f:4e:b3:
ca:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:CB:E5:D7:D0:A0:12:2F:53:AC:85:5C:AE:D7:39:9D:5B:AA:3E:8F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/03369F1C4DD011F083372FEFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.199.160.0/19
Signature Algorithm: sha256WithRSAEncryption
a8:4f:61:08:dd:73:63:96:82:93:45:c8:cf:e2:7d:40:6d:0d:
2f:6a:c2:72:9a:35:0b:73:68:63:84:42:8f:bb:26:15:cb:9a:
14:f0:61:7c:63:d0:9e:a9:be:3f:c1:e8:07:ab:1a:5c:2d:b6:
29:6e:4e:02:90:eb:34:3a:c1:0d:c1:73:f6:0f:29:9f:6c:38:
27:87:79:3c:ed:ef:a2:e9:a6:2b:dd:ce:f4:c7:ea:5b:b2:eb:
a3:e5:0f:97:99:0a:28:1a:7c:7b:ad:aa:ee:09:f5:26:84:45:
db:df:e2:07:30:8b:f3:02:c8:9e:29:93:91:df:27:5f:f1:bc:
04:25:51:0d:4c:19:18:5a:02:a0:27:32:0a:85:98:97:20:61:
2e:16:bf:70:72:f2:5e:9e:53:5e:27:3b:2b:f5:1f:0f:ee:26:
2c:3f:45:22:ad:09:d9:53:82:8e:cc:47:48:06:8b:29:8e:02:
11:5e:c5:d0:8e:76:d8:9b:e5:34:d2:51:22:df:72:b1:5a:7e:
1f:f9:76:1f:96:bc:63:15:fe:51:a4:12:67:dd:3d:e9:83:2c:
2b:c5:e6:e5:e1:70:26:ea:33:7a:37:57:2c:aa:74:20:81:b1:
f1:df:96:b7:e7:e9:44:3e:24:3c:89:46:6c:f4:15:0d:a5:39:
6b:11:dc:89
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAYeFMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNjIwMTIxMzQxWhcNMjUwNzI2MTIxMzQxWjAYMRYw
FAYDVQQDEw02ODU1NTA3OS0wM2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAra/5iKB/6n0SSM3GmtdsdJNoz5HlEvDKk1IMJZKsdub3vVh8BjlXw5Bj
9g+yVqGT2ARhr1b25zi+R4oNf6pCxIcOLSrCjgqe02bqO+uVEv6bKTs4on4iw55i
3qFA7hseYYa1oroPAbAUUWRx/lDwmHYE3Poq/C3Kv0/KUOCqmIbVJdTdhpUxNVXl
GFYmbFp0AR3+htTwyfUmKd+/jg50hvCwbtvYIp8cJvmtz+ACwbVZp/8cUgRlFhqR
OX1BYfC+9DVeQx+53wYB7nZR77shkCH+P5T4e0VyVRedeYUE+GzRWW2/duWx/cR2
4GWYmt4GEeIdZjrjxKGBfkFPTrPKkwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPjL
5dfQoBIvU6yFXK7XOZ1bqj6PMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wMzM2OUYxQzRERDAxMUYwODMzNzJGRUZEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFmsegMA0GCSqGSIb3DQEB
CwUAA4IBAQCoT2EI3XNjloKTRcjP4n1AbQ0vasJymjULc2hjhEKPuyYVy5oU8GF8
Y9Ceqb4/wegHqxpcLbYpbk4CkOs0OsENwXP2DymfbDgnh3k87e+i6aYr3c70x+pb
suuj5Q+XmQooGnx7raruCfUmhEXb3+IHMIvzAsieKZOR3ydf8bwEJVENTBkYWgKg
JzIKhZiXIGEuFr9wcvJenlNeJzsr9R8P7iYsP0UirQnZU4KOzEdIBospjgIRXsXQ
jnbYm+U00lEi33KxWn4f+XYflrxjFf5RpBJn3T3pgywrxebl4XAm6jN6N1csqnQg
gbHx35a35+lEPiQ8iUZs9BUNpTlrEdyJ
-----END CERTIFICATE-----
Generated at Tue Jul 1 04:23:58 2025 by rpki-client